Bug 2948

Summary: CVE-2011-3146 librsvg: object type mismatch leading to invalid pointer dereference
Product: Mageia Reporter: Nicolas Vigier <boklm>
Component: SecurityAssignee: Mageia Bug Squad <bugsquad>
Status: RESOLVED OLD QA Contact:
Severity: normal    
Priority: Normal CC: balcaen.john, dmorganec, fundawang
Version: 1   
Target Milestone: ---   
Hardware: All   
OS: Linux   
Whiteboard:
Source RPM: librsvg CVE:
Status comment:

Description Nicolas Vigier 2011-10-06 01:27:09 CEST 
reproducer provided in this bug report :
https://bugzilla.gnome.org/show_bug.cgi?id=658014

fixed by this commit :
http://git.gnome.org/browse/librsvg/commit/?id=34c95743ca692ea0e44778e41a7c0a129363de84
Comment 1 Manuel Hiebel 2011-10-06 01:46:00 CEST 
(add the three commiter of librsvg in CC as we don't a maintainer of that package)

CC: (none) => balcaen.john, dmorganec, fundawang

Comment 2 Funda Wang 2011-10-06 10:01:01 CEST 
Already fixed in 2.32.1-1.1.mga1. Check your core/updates repository.

Status: NEW => RESOLVED
Resolution: (none) => OLD